VDB

GCVE-110-NCSC-2025-397

GCVE-110-NCSC-2025-397
Advisory PublishedCVSS 6.5/10
Vulnetix · Advisory published December 15, 2025
The issue was resolved through the implementation of additional entitlement checks to enhance security measures.

Weaknesses (CWE)

CWE-20Improper Input ValidationCWE-125Out-of-bounds ReadCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-416Use After FreeCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Risk Scores

CVSS 3.1
6.5/10
Medium · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersionsPlatforms
Applevers:unknown/*

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›